matrix-synapse-1.132.0-bp160.1.4

- Update to 1.132.0
  - Features
  - Add support for MSC4155 Invite Filtering. (#18288)
  - Add experimental user_may_send_state_event module API
    callback. (#18455)
  - Add experimental get_media_config_for_user and
    is_user_allowed_to_upload_media_of_size module API callbacks
    that allow overriding of media repository maximum upload
    size. (#18457)
  - Add experimental get_ratelimit_override_for_user module API
    callback that allows overriding of per-user ratelimits.
    (#18458)
  - Pass room_config argument to user_may_create_room spam
    checker module callback. (#18486)
  - Support configuration of default and extra user types.
    (#18456)
  - Successful requests to /_matrix/app/v1/ping will now force
    Synapse to reattempt delivering transactions to appservices.
    (#18521)
  - Support the import of the RatelimitOverride type from
    synapse.module_api in modules and rename messages_per_second
    to per_second. (#18513)
  - Bugfixes
  - Remove destinations from sending if not whitelisted. (#18484)
  - Fixed room summary API incorrectly returning that a room is
    private in the room summary response when the join rule is
    omitted by the remote server. Contributed by @nexy7574.
    (#18493)
  - Prevent users from adding themselves to their own user ignore
    list. (#18508)
  - Improved Documentation
  - Generate config documentation from JSON Schema file. (#17892)
  - Mention CAP_NET_BIND_SERVICE as an alternative to running
    Synapse as root in order to bind to a privileged port.
    (#18408)
  - Surface hidden Admin API documentation regarding fetching of
    scheduled tasks. (#18516)
  - Mark the new module APIs in this release as experimental.
    (#18536)
  - Internal Changes
  - Mark dehydrated devices in the List All User Devices Admin
    API. (#18252)
  - Reduce disk wastage by cleaning up received_transactions
    older than 1 day, rather than 30 days. (#18310)
  - Distinguish all vs local events being persisted in the "Event
    Send Time Quantiles" graph (Grafana). (#18510)

- Update to 1.131.0
  - Features
  - Add msc4263_limit_key_queries_to_users_who_share_rooms config
    option as per MSC4263. (#18180)
  - Add option to allow registrations that begin with _.
    Contributed by _ (@hex5f). (#18262)
  - Include room ID in response to the Room Deletion Status Admin
    API. (#18318)
  - Add support for calling Policy Servers (MSC4284) to mark
    events as spam. (#18387)
  - Bugfixes
  - Prevent race-condition in _maybe_retry_device_resync
    entrance. (#18391)
  - Fix the
    tests.handlers.test_worker_lock.WorkerLockTestCase.test_lock_contention
    test which could spuriously time out on RISC-V architectures
    due to performance differences. (#18430)
  - Fix admin redaction endpoint not redacting encrypted
    messages. (#18434)
  - Improved Documentation
  - Update room_list_publication_rules docs to consider defaults
    that changed in v1.126.0. Contributed by @HarHarLinks.
    (#18286)
  - Add advice for upgrading between major PostgreSQL versions to
    the database documentation. (#18445)
  - Internal Changes
  - Fix a memory leak in _NotifierUserStream. (#18380)
  - Fix a couple type annotations in the RootConfig/Config.
    (#18409)
  - Explicitly enable PyPy builds in cibuildwheels config to
    avoid it being disabled on a future upgrade to cibuildwheel
    v3. (#18417)
  - Update the PR review template to remove an erroneous line
    break from the final bullet point. (#18419)
  - Explain why we flush_buffer() for Python print(...) output.
    (#18420)
  - Add lint to ensure we don't add a CREATE/DROP INDEX in a
    schema delta. (#18440)
  - Allow checking only for the existence of a field in an SSO
    provider's response, rather than requiring the value(s) to
    check. (#18454)
  - Add unit tests for homeserver usage statistics. (#18463)
  - Don't move invited users to new room when shutting down room.
    (#18471)
  - Updates to locked dependencies
  - Bump actions/setup-python from 5.5.0 to 5.6.0. (#18398)
  - Bump authlib from 1.5.1 to 1.5.2. (#18452)
  - Bump docker/build-push-action from 6.15.0 to 6.17.0. (#18397,
    [#18449])
  - Bump lxml from 5.3.0 to 5.4.0. (#18480)
  - Bump mypy-zope from 1.0.9 to 1.0.11. (#18428)
  - Bump pyo3 from 0.23.5 to 0.24.2. (#18460)
  - Bump pyo3-log from 0.12.3 to 0.12.4. (#18453)
  - Bump pyopenssl from 25.0.0 to 25.1.0. (#18450)
  - Bump ruff from 0.7.3 to 0.11.11. (#18451, #18482)
  - Bump tornado from 6.4.2 to 6.5.0. (#18459)
  - Bump setuptools from 72.1.0 to 78.1.1. (#18461)
  - Bump types-jsonschema from 4.23.0.20241208 to
    4.23.0.20250516. (#18481)
  - Bump types-requests from 2.32.0.20241016 to 2.32.0.20250328.
    (#18427)

- Update to 1.130.0
  - Features
  - Add an Admin API endpoint GET
    /_synapse/admin/v1/scheduled_tasks to fetch scheduled tasks.
    (#18214)
  - Add config option user_directory.exclude_remote_users which,
    when enabled, excludes remote users from user directory
    search results. (#18300)
  - Add support for handling GET /devices/ on workers. (#18355)
  - Bugfixes
  - Fix startup being blocked on creating a new index that was
    introduced in v1.130.0rc1. (#18439)
  - Fix the ordering of local messages in rooms that were
    affected by GHSA-v56r-hwv5-mxg6. (#18447)
  - Fix a longstanding bug where Synapse would immediately retry
    a failing push endpoint when a new event is received,
    ignoring any backoff timers. (#18363)
  - Pass leave from remote invite rejection down Sliding Sync.
    (#18375)
  - Updates to the Docker image
  - In configure_workers_and_start.py, use the same absolute path
    of Python in the interpreter shebang, and invoke child Python
    processes with sys.executable. (#18291)
  - Optimize the build of the workers image. (#18292)
  - In start_for_complement.sh, replace some external program
    calls with shell builtins. (#18293)
  - When generating container scripts from templates, don't add a
    leading newline so that their shebangs may be handled
    correctly. (#18295)
  - Improved Documentation
  - Improve formatting of the README file. (#18218)
  - Add documentation for configuring Pocket ID as an OIDC
    provider. (#18237)
  - Fix typo in docs about the push config option. Contributed by
    @HarHarLinks. (#18320)
  - Add /_matrix/federation/v1/version to list of federation
    endpoints that can be handled by workers. (#18377)
  - Add an Admin API endpoint GET
    /_synapse/admin/v1/scheduled_tasks to fetch scheduled tasks.
    (#18384)
  - Internal Changes
  - Return specific error code when adding an email address /
    phone number to account is not supported (MSC4178). (#17578)
  - Stop auto-provisionning missing users & devices when
    delegating auth to Matrix Authentication Service. Requires
    MAS 0.13.0 or later. (#18181)
  - Apply file hashing and existing quarantines to media
    downloaded for URL previews. (#18297)
  - Allow a few admin APIs used by matrix-authentication-service
    to run on workers. (#18313)
  - Apply should_drop_federated_event to federation invites.
    (#18330)
  - Allow /rooms/ admin API to be run on workers. (#18360)
  - Minor performance improvements to the notifier. (#18367)
  - Slight performance increase when using the ratelimiter.
    (#18369)
  - Don't validate the at_hash (access token hash) field in OIDC
    ID Tokens if we don't end up actually using the OIDC Access
    Token. (#18374, #18385)
  - Fixed test failures when using authlib 1.5.2. (#18390)
  - Refactor MSC4186 Simplified Sliding Sync room list tests to
    cover both new and fallback logic paths. (#18399)
  - Updates to locked dependencies
  - Bump actions/add-to-project from
    280af8ae1f83a494cfad2cb10f02f6d13529caa9 to
    5b1a254a3546aef88e0a7724a77a623fa2e47c36. (#18365)
  - Bump actions/download-artifact from 4.2.1 to 4.3.0. (#18364)
  - Bump actions/setup-go from 5.4.0 to 5.5.0. (#18426)
  - Bump anyhow from 1.0.97 to 1.0.98. (#18336)
  - Bump packaging from 24.2 to 25.0. (#18393)
  - Bump pillow from 11.1.0 to 11.2.1. (#18429)
  - Bump pydantic from 2.10.3 to 2.11.4. (#18394)
  - Bump pyo3-log from 0.12.2 to 0.12.3. (#18317)
  - Bump pyopenssl from 24.3.0 to 25.0.0. (#18315)
  - Bump sha2 from 0.10.8 to 0.10.9. (#18395)
  - Bump sigstore/cosign-installer from 3.8.1 to 3.8.2. (#18366)
  - Bump softprops/action-gh-release from 1 to 2. (#18264)
  - Bump stefanzweifel/git-auto-commit-action from 5.1.0 to
    5.2.0. (#18354)
  - Bump txredisapi from 1.4.10 to 1.4.11. (#18392)
  - Bump types-jsonschema from 4.23.0.20240813 to
    4.23.0.20241208. (#18305)
  - Bump types-psycopg2 from 2.9.21.20250121 to 2.9.21.20250318.
    (#18316)

- Update to 1.129.0
  - Features
  - Add passthrough_authorization_parameters in OIDC
    configuration to allow passing parameters to the
    authorization grant URL. (#18232)
  - Add total_event_count, total_message_count, and
    total_e2ee_event_count fields to the homeserver usage
    statistics. (#18260)
  - Bugfixes
  - Fix force_tracing_for_users config when using delegated auth.
    (#18334)
  - Fix the token introspection cache logging access tokens when
    MAS integration is in use. (#18335)
  - Stop caching introspection failures when delegating auth to
    MAS. (#18339)
  - Fix ExternalIDReuse exception after migrating to MAS on
    workers with a high traffic. (#18342)
  - Fix minor performance regression caused by tracking of room
    participation. Regressed in v1.128.0. (#18345)
  - Updates to the Docker image
  - Optimize the build of the complement-synapse image. (#18294)
  - Internal Changes
  - Revert the slow background update introduced by #18068 in
    v1.128.0. (#18372)
  - Revert "Add total event, unencrypted message, and e2ee event
    counts to stats reporting", added in v1.129.0rc1. (#18373)
  - Disable statement timeout during room purge. (#18133)
  - Add cache to storage functions used to auth requests when
    using delegated auth. (#18337)

- unlock the rust related buildrequires

- Update to 1.128.0
  - Features
  - Add an access token introspection cache to make Matrix
    Authentication Service integration (MSC3861) more efficient.
    (#18231)
  - Add background job to clear unreferenced state groups.
    (#18254)
  - Hashes of media files are now tracked by Synapse. Media
    quarantines will now apply to all files with the same hash.
    (#18277, #18302, #18296)
  - Bugfixes
  - Add index to sliding sync (MSC4186) membership snapshot
    table, to fix a performance issue. (#18074)
  - Updates to the Docker image
  - Specify the architecture of installed packages via an APT
    config option, which is more reliable than appending package
    names with :{arch}. (#18271)
  - Always specify base image debian versions with a build
    argument. (#18272)
  - Allow passing arguments to start_for_complement.sh (to be
    sent to configure_workers_and_start.py). (#18273)
  - Make some improvements to the prefix-log script in the
    workers image. (#18274)
  - Use uv pip to install supervisor in the worker image.
    (#18275)
  - Avoid needing to download & use rsync in a build layer.
    (#18287)
  - Improved Documentation
  - Fix how to obtain access token and change naming from riot to
    element (#18225)
  - Correct a small typo in the SSO mapping providers
    documentation. (#18276)
  - Add docs for how to clear out the Poetry wheel cache.
    (#18283)
  - Internal Changes
  - Add a column participant to room_memberships table. (#18068)
  - Update Poetry to 2.1.1, including updating the lock file
    version. (#18251)
  - Pin GitHub Actions dependencies by commit hash. (#18255)
  - Add DB delta to remove the old state group deletion job.
    (#18284)
  - Updates to locked dependencies
  - Bump actions/add-to-project from
    f5473ace9aeee8b97717b281e26980aa5097023f to
    280af8ae1f83a494cfad2cb10f02f6d13529caa9. (#18303)
  - Bump actions/cache from 4.2.2 to 4.2.3. (#18266)
  - Bump actions/download-artifact from 4.2.0 to 4.2.1. (#18268)
  - Bump actions/setup-python from 5.4.0 to 5.5.0. (#18298)
  - Bump actions/upload-artifact from 4.6.1 to 4.6.2. (#18304)
  - Bump authlib from 1.4.1 to 1.5.1. (#18306)
  - Bump dawidd6/action-download-artifact from 8 to 9. (#18204)
  - Bump jinja2 from 3.1.5 to 3.1.6. (#18223)
  - Bump log from 0.4.26 to 0.4.27. (#18267)
  - Bump phonenumbers from 8.13.50 to 9.0.2. (#18299)
  - Bump pygithub from 2.5.0 to 2.6.1. (#18243)
  - Bump pyo3-log from 0.12.1 to 0.12.2. (#18269)

- Update to 1.127.1 (boo#1240153)
  Fix CVE-2025-30355 / GHSA-v56r-hwv5-mxg6. High severity
  vulnerability affecting federation. The vulnerability has been
  exploited in the wild.

- Update to 1.127.0
  - Features
  - Update MSC4140 implementation to no longer cancel a user's
    own delayed state events with an event type & state key that
    match a more recent state event sent by that user. (#17810)
  - Improved Documentation
  - Fixed a minor typo in the Synapse documentation. Contributed
    by @karuto12. (#18224)
  - Internal Changes
  - Remove undocumented SYNAPSE_USE_FROZEN_DICTS environment
    variable. (#18123)
  - Fix detection of workflow failures in the release script.
    (#18211)
  - Add caching support to media endpoints. (#18235)
  - Updates to locked dependencies
  - Bump anyhow from 1.0.96 to 1.0.97. (#18201)
  - Bump bcrypt from 4.2.1 to 4.3.0. (#18207)
  - Bump bytes from 1.10.0 to 1.10.1. (#18227)
  - Bump http from 1.2.0 to 1.3.1. (#18245)
  - Bump sentry-sdk from 2.19.2 to 2.22.0. (#18205)
  - Bump serde from 1.0.218 to 1.0.219. (#18228)
  - Bump serde_json from 1.0.139 to 1.0.140. (#18202)
  - Bump ulid from 1.2.0 to 1.2.1. (#18246)

- revert previous change as the dependencies are missing in the
  distro

- enable redis and sentry support by default so they work out of
  the box

- Fix security bug in the get_missing_events federation AP
  (CVE-2018-12291, boo#1096833)
- Add boo1096833_event_visibility_rules_not_applied_correctly.patch

- Update to version v0.28.1:
  * SECURITY UPDATE
    Clamp the allowed values of event depth received over federation to be
    [0, 2^63 - 1]. This mitigates an attack where malicious events
    injected with depth = 2^63 - 1 render rooms unusable. Depth is used to
    determine the cosmetic ordering of events within a room, and so the ordering
    of events in such a room will default to using stream_ordering rather than depth
    (topological_ordering).
    This is a temporary solution to mitigate abuse in the wild, whilst a long term solution
    is being implemented to improve how the depth parameter is used.
    Full details at
    https://docs.google.com/document/d/1I3fi2S-XnpO45qrpCsowZv8P8dHcNZ4fsBsbOW7KABI/edit#
    Pin Twisted to <18.4 until we stop using the private _OpenSSLECCurve API.
  * Bug Fixes:
  * Return 401 for invalid access_token on logout (PR #2938) Thanks to @dklug!
  * Return a 404 rather than a 500 on rejoining empty rooms (PR #3080)
  * fix federation_domain_whitelist (PR #3099)
  * Avoid creating events with huge numbers of prev_events (PR #3113)
  * Reject events which have lots of prev_events (PR #3118)
  * Fix quarantine media admin API and search reindex (PR #3130)
  * Fix media admin APIs (PR #3134)
  * Features:
  * Add metrics for event processing lag (PR #3090)
  * Add metrics for ResponseCache (PR #3092)
  * Changes:
  * Synapse on PyPy (PR #2760) Thanks to @Valodim!
  * move handling of auto_join_rooms to RegisterHandler (PR #2996) Thanks to @krombel!
  * Improve handling of SRV records for federation connections (PR #3016) Thanks to @silkeh!
  * Document the behaviour of ResponseCache (PR #3059)
  * Preparation for py3 (PR #3061, #3073, #3074, #3075, #3103, #3104, #3106, #3107, #3109, #3110) Thanks to @NotAFile!
  * update prometheus dashboard to use new metric names (PR #3069) Thanks to @krombel!
  * use python3-compatible prints (PR #3074) Thanks to @NotAFile!
  * Send federation events concurrently (PR #3078)
  * Limit concurrent event sends for a room (PR #3079)
  * Improve R30 stat definition (PR #3086)
  * Send events to ASes concurrently (PR #3088)
  * Refactor ResponseCache usage (PR #3093)
  * Clarify that SRV may not point to a CNAME (PR #3100) Thanks to @silkeh!
  * Use str(e) instead of e.message (PR #3103) Thanks to @NotAFile!
  * Use six.itervalues in some places (PR #3106) Thanks to @NotAFile!
  * Refactor store.have_events (PR #3117)

- Disable web-client for package self-test to get rid of unfulfilled dependency

- Introduce package self-test based on _multibuild

- Update to version v0.27.4:
  * Bug fixes:
  * URL quote path segments over federation (#3082)
  * Add room_id to the response of rooms/{roomId}/join (PR #2986) Thanks to @jplatte!
  * Fix replication after switch to simplejson (PR #3015)
  * Fix replication after switch to simplejson (PR #3015)
  * 404 correctly on missing paths via NoResource (PR #3022)
  * Fix error when claiming e2e keys from offline servers (PR #3034)
  * fix tests/storage/test_user_directory.py (PR #3042)
  * use PUT instead of POST for federating groups/m.join_policy (PR #3070) Thanks to @krombel!
  * postgres port script: fix state_groups_pkey error (PR #3072)
  * Features:
  * Add joinability for groups (PR #3045)
  * Implement group join API (PR #3046)
  * Add counter metrics for calculating state delta (PR #3033)
  * R30 stats (PR #3041)
  * Measure time it takes to calculate state group ID (PR #3043)
  * Add basic performance statistics to phone home (PR #3044)
  * Add response size metrics (PR #3071)
  * phone home cache size configurations (PR #3063)
  * Changes:
  * Update canonicaljson dependency (#3095)
  * Add a blurb explaining the main synapse worker (PR #2886) Thanks to @turt2live!
  * Replace old style error catching with 'as' keyword (PR #3000) Thanks to @NotAFile!
  * Use .iter* to avoid copies in StateHandler (PR #3006)
  * Linearize calls to _generate_user_id (PR #3029)
  * Remove last usage of ujson (PR #3030)
  * Use simplejson throughout (PR #3048)
  * Use static JSONEncoders (PR #3049)
  * Remove uses of events.content (PR #3060)
  * Improve database cache performance (PR #3068)

- Update to version v0.27.2:
  * Bug fixes:
  * Fix bug which broke TCP replication between workers (PR #3015)
  * Fix broken ldap_config config option (PR #2683) Thanks to @seckrv!
  * Fix error message when user is not allowed to unban (PR #2761) Thanks to
    @turt2live!
  * Fix publicised groups GET API (singular) over federation (PR #2772)
  * Fix user directory when using user_directory_search_all_users config
    option (PR #2803, #2831)
  * Fix error on /publicRooms when no rooms exist (PR #2827)
  * Fix bug in quarantine_media (PR #2837)
  * Fix url_previews when no Content-Type is returned from URL (PR #2845)
  * Fix rare race in sync API when joining room (PR #2944)
  * Fix slow event search, switch back from GIST to GIN indexes (PR #2769,
    [#2848])
  * Fix bug where an invalid event caused server to stop functioning
    correctly, due to parsing and serializing bugs in ujson library.
  * Features:
  * Add ability for ASes to override message send time (PR #2754)
  * Add support for custom storage providers for media repository (PR #2867,
    [#2777], #2783, #2789, #2791, #2804, #2812, #2814, #2857, #2868, #2767)
  * Add purge API features, see docs/admin_api/purge_history_api.rst for
    full details (PR #2858, #2867, #2882, #2946, #2962, #2943)
  * Add support for whitelisting 3PIDs that users can register. (PR #2813)
  * Add /room/{id}/event/{id} API (PR #2766)
  * Add an admin API to get all the media in a room (PR #2818) Thanks to
    @turt2live!
  * Add federation_domain_whitelist option (PR #2820, #2821)
  * Changes:
  * Continue to factor out processing from main process and into worker
    processes. See updated docs/workers.rst (PR #2892 - #2904, #2913, #2920
  - #2926, #2947, #2847, #2854, #2872, #2873, #2874, #2928, #2929, #2934,
    [#2856], #2976 - #2984, #2987 - #2989, #2991 - #2993, #2995, #2784)
  * Ensure state cache is used when persisting events (PR #2864, #2871,
    [#2802], #2835, #2836, #2841, #2842, #2849)
  * Change the default config to bind on both IPv4 and IPv6 on all platforms
    (PR #2435) Thanks to @silkeh!
  * No longer require a specific version of saml2 (PR #2695) Thanks to @okurz!
  * Remove verbosity/log_file from generated config (PR #2755)
  * Add and improve metrics and logging (PR #2770, #2778, #2785, #2786,
    [#2787], #2793, #2794, #2795, #2809, #2810, #2833, #2834, #2844, #2965,
    [#2927], #2975, #2790, #2796, #2838)
  * When using synctl with workers, don't start the main synapse
    automatically (PR #2774)
  * Minor performance improvements (PR #2773, #2792)
  * Use a connection pool for non-federation outbound connections (PR #2817)
  * Make it possible to run unit tests against postgres (PR #2829)
  * Update pynacl dependency to 1.2.1 or higher (PR #2888) Thanks to @bachp!
  * Remove ability for AS users to call /events and /sync (PR #2948)
  * Use bcrypt.checkpw (PR #2949) Thanks to @krombel!
- Change spec-file to use service downloaded and recompressed file directly
- Remove patch synapse_python_dependencies_allow_higher_versions_of_pysaml2.patch
  now included in upstream changes

- Update to version v0.26.0:
  * Bug fixes:
  * Fix database port script (PR #2673)
  * Fix internal server error on login with ldap_auth_provider (PR #2678) Thanks
    to @jkolo!
  * Fix error on sqlite 3.7 (PR #2697)
  * Fix OPTIONS on preview_url (PR #2707)
  * Fix error handling on dns lookup (PR #2711)
  * Fix wrong avatars when inviting multiple users when creating room (PR #2717)
  * Fix 500 when joining matrix-dev (PR #2719)
  * Features:
  * Add ability for ASes to publicise groups for their users (PR #2686)
  * Add all local users to the user_directory and optionally search them (PR
  * #2723)
  * Add support for custom login types for validating users (PR #2729)
  * Changes:
  * Update example Prometheus config to new format (PR #2648) Thanks to
    @krombel!
  * Rename redact_content option to include_content in Push API (PR #2650)
  * Declare support for r0.3.0 (PR #2677)
  * Improve upserts (PR #2684, #2688, #2689, #2713)
  * Improve documentation of workers (PR #2700)
  * Improve tracebacks on exceptions (PR #2705)
  * Allow guest access to group APIs for reading (PR #2715)
  * Support for posting content in federation_client script (PR #2716)
  * Delete devices and pushers on logouts etc (PR #2722)

- Update to version v0.25.1:
  * Bug fixes:
  * Fix login with LDAP and other password provider modules (PR #2678). Thanks to @jkolo!
  * Fix port script (PR #2673)
  * Fix port script (PR #2577)
  * Fix error when running synapse with no logfile (PR #2581)
  * Fix UI auth when deleting devices (PR #2591)
  * Fix typo when checking if user is invited to group (PR #2599)
  * Fix the port script to drop NUL values in all tables (PR #2611)
  * Fix appservices being backlogged and not receiving new events due to a bug in
    notify_interested_services (PR #2631) Thanks to @xyzz!
  * Fix updating rooms avatar/display name when modified by admin (PR #2636)
  * Thanks to @farialima!
  * Fix bug in state group storage (PR #2649)
  * Fix 500 on invalid utf-8 in request (PR #2663)
  * Features:
  * Add is_public to groups table to allow for private groups (PR #2582)
  * Add a route for determining who you are (PR #2668) Thanks to @turt2live!
  * Add more features to the password providers (PR #2608, #2610, #2620,
    [#2622], #2623, #2624, #2626, #2628, #2629)
  * Add a hook for custom rest endpoints (PR #2627)
  * Add API to update group room visibility (PR #2651)
  * Changes:
  * Ignore tags when generating URL preview descriptions (PR #2576) Thanks to
    @maximevaillancourt!
  * Register some /unstable endpoints in /r0 as well (PR #2579) Thanks to @krombel!
  * Support /keys/upload on /r0 as well as /unstable (PR #2585)
  * Front-end proxy: pass through auth header (PR #2586)
  * Allow ASes to deactivate their own users (PR #2589)
  * Remove refresh tokens (PR #2613)
  * Automatically set default displayname on register (PR #2617)
  * Log login requests (PR #2618)
  * Always return is_public in the /groups/:group_id/rooms API (PR #2630)
  * Avoid no-op media deletes (PR #2637) Thanks to @spantaleev!
  * Fix various embarrassing typos around user_directory and add some doc. (PR #2643)
  * Return whether a user is an admin within a group (PR #2647)
  * Namespace visibility options for groups (PR #2657)
  * Downcase UserIDs on registration (PR #2662)
  * Cache failures when fetching URL previews (PR #2669)
  * Add patch synapse_python_dependencies_allow_higher_versions_of_pysaml2.patch

- Update to version v0.24.1:
  * Bug fixes:
  * Fix updating group profiles over federation (PR #2567)
  * Fix handling SERVFAILs when doing AAAA lookups for federation (PR #2477)
  * Fix incompatibility with newer versions of ujson (PR #2483) Thanks to
    @jeremycline!
  * Fix notification keywords that start/end with non-word chars (PR #2500)
  * Fix stack overflow and logcontexts from linearizer (PR #2532)
  * Fix 500 error when fields missing from power_levels event (PR #2552)
  * Fix 500 error when we get an error handling a PDU (PR #2553)
  * Fix regression in performance of syncs (PR #2470)
  * Fix caching error in the push evaluator (PR #2332)
  * Fix bug where pusherpool didn't start and broke some rooms (PR #2342)
  * Fix port script for user directory tables (PR #2375)
  * Fix device lists notifications when user rejoins a room (PR #2443, #2449)
  * Fix sync to always send down current state events in timeline (PR #2451)
  * Fix bug where guest users were incorrectly kicked (PR #2453)
  * Fix bug talking to IPv6 only servers using SRV records (PR #2462)
  * Fix synapse_port_db failure. Thanks to Pneumaticat! (PR #1904)
  * Fix caching to not cache error responses (PR #1913)
  * Fix APIs to make kick & ban reasons work (PR #1917)
  * Fix bugs in the /keys/changes api (PR #1921)
  * Fix bug where users couldn't forget rooms they were banned from (PR #1922)
  * Fix issue with long language values in pushers API (PR #1925)
  * Fix a race in transaction queue (PR #1930)
  * Fix dynamic thumbnailing to preserve aspect ratio. Thanks to jkolo! (PR
    [#1945])
  * Fix device list update to not constantly resync (PR #1964)
  * Fix potential for huge memory usage when getting device that have
    changed (PR #1969)
  * Fix bug where pusher pool didn't start and caused issues when
    interacting with some rooms (PR #2342)
  * Fix bug with storing registration sessions that caused frequent CPU churn
    (PR #2319)
  * Fix users not getting notifications when AS listened to that user_id (PR
    [#2216]) Thanks to @slipeer!
  * Fix users without push set up not getting notifications after joining rooms
    (PR #2236)
  * Fix preview url API to trim long descriptions (PR #2243)
  * Fix bug where we used cached but unpersisted state group as prev group,
    resulting in broken state of restart (PR #2263)
  * Fix removing of pushers when using workers (PR #2267)
  * Fix CORS headers to allow Authorization header (PR #2285) Thanks to @krombel!
  * Fix bug in anonymous usage statistic reporting (PR #2281)
  * Fix API to allow clients to upload one-time-keys with new sigs (PR #2206)
  * Fix bug where users got pushed for rooms they had muted (PR #2200)
  * Fix nuke-room script to work with current schema (PR #1927) Thanks
    @zuckschwerdt!
  * Fix db port script to not assume postgres tables are in the public schema
    (PR #2024) Thanks @jerrykan!
  * Fix getting latest device IP for user with no devices (PR #2118)
  * Fix rejection of invites to unreachable servers (PR #2145)
  * Fix code for reporting old verify keys in synapse (PR #2156)
  * Fix invite state to always include all events (PR #2163)
  * Fix bug where synapse would always fetch state for any missing event (PR #2170)
  * Fix a leak with timed out HTTP connections (PR #2180)
  * Fix bug where we didn't time out HTTP requests to ASes  (PR #2192)
  * Fix joining rooms over federation where not all servers in the room saw the
    new server had joined (PR #2094)
  * Fix bug where current_state_events renamed to current_state_ids (PR #1849)
  * Fix routing loop when fetching remote media (PR #1992)
  * Fix current_state_events table to not lie (PR #1996)
  * Fix CAS login to handle PartialDownloadError (PR #1997)
  * Fix assertion to stop transaction queue getting wedged (PR #2010)
  * Fix presence to fallback to last_active_ts if it beats the last sync time.
    Thanks @Half-Shot! (PR #2014)
  * Fix bug when federation received a PDU while a room join is in progress (PR
    [#2016])
  * Fix resetting state on rejected events (PR #2025)
  * Fix installation issues in readme. Thanks @ricco386 (PR #2037)
  * Fix caching of remote servers' signature keys (PR #2042)
  * Fix some leaking log context (PR #2048, #2049, #2057, #2058)
  * Fix rejection of invites not reaching sync (PR #2056)
  * Fix bug in handling of incoming device list updates over federation.
  * Features:
  * Add Group Server (PR #2352, #2363, #2374, #2377, #2378, #2382, #2410, #2426,
    [#2430], #2454, #2471, #2472, #2544)
  * Add support for channel notifications (PR #2501)
  * Add basic implementation of backup media store (PR #2538)
  * Add config option to auto-join new users to rooms (PR #2545)
  * Add a frontend proxy worker (PR #2344)
  * Add support for event_id_only push format (PR #2450)
  * Add a PoC for filtering spammy events (PR #2456)
  * Add a config option to block all room invites (PR #2457)
  * Add a user directory API (PR #2252, and many more)
  * Add shutdown room API to remove room from local server (PR #2291)
  * Add API to quarantine media (PR #2292)
  * Add new config option to not send event contents to push servers (PR #2301)
    Thanks to @cjdelisle!
  * Add per user rate-limiting overrides (PR #2208)
  * Add config option to limit maximum number of events requested by ``/sync``
    and ``/messages`` (PR #2221) Thanks to @psaavedra!
  * Add username availability checker API (PR #2183)
  * Add read marker API (PR #2120)
  * Add delete_devices API (PR #1993)
  * Add phone number registration/login support (PR #1994, #2055)
  * Add some administration functionalities. Thanks to morteza-araby! (PR #1784)
  * Changes:
  * Make the spam checker a module (PR #2474)
  * Delete expired url cache data (PR #2478)
  * Ignore incoming events for rooms that we have left (PR #2490)
  * Allow spam checker to reject invites too (PR #2492)
  * Add room creation checks to spam checker (PR #2495)
  * Spam checking: add the invitee to user_may_invite (PR #2502)
  * Process events from federation for different rooms in parallel (PR #2520)
  * Allow error strings from spam checker (PR #2531)
  * Improve error handling for missing files in config (PR #2551)
  * Make 'affinity' package optional, as it is not supported on some platforms
  * Use bcrypt module instead of py-bcrypt (PR #2288) Thanks to @kyrias!
  * Improve performance of generating push notifications (PR #2343, #2357, #2365,
    [#2366], #2371)
  * Improve DB performance for device list handling in sync (PR #2362)
  * Include a sample prometheus config (PR #2416)
  * Document known to work postgres version (PR #2433) Thanks to @ptman!
  * Improve performance of storing user IPs (PR #2307, #2308)
  * Slightly improve performance of verifying access tokens (PR #2320)
  * Slightly improve performance of event persistence (PR #2321)
  * Increase default cache factor size from 0.1 to 0.5 (PR #2330)
  * Various performance fixes (PR #2177, #2233, #2230, #2238, #2248, #2256,
    [#2274])
  * Deduplicate sync filters (PR #2219) Thanks to @krombel!
  * Correct a typo in UPGRADE.rst (PR #2231) Thanks to @aaronraimist!
  * Add count of one time keys to sync stream (PR #2237)
  * Only store event_auth for state events (PR #2247)
  * Store URL cache preview downloads separately (PR #2299)
  * Various small performance fixes (PR #2201, #2202, #2224, #2226, #2227, #2228,
    [#2229])
  * Update username availability checker API (PR #2209, #2213)
  * When purging, don't de-delta state groups we're about to delete (PR #2214)
  * Documentation to check synapse version (PR #2215) Thanks to @hamber-dick!
  * Add an index to event_search to speed up purge history API (PR #2218)
  * Always mark remotes as up if we receive a signed request from them (PR #2190)
  * Enable guest access for the 3pl/3pid APIs (PR #1986)
  * Add setting to support TURN for guests (PR #2011)
  * Various performance improvements (PR #2075, #2076, #2080, #2083, #2108,
    [#2158], #2176, #2185)
  * Make synctl a bit more user friendly (PR #2078, #2127) Thanks @APwhitehat!
  * Replace HTTP replication with TCP replication (PR #2082, #2097, #2098,
    [#2099], #2103, #2014, #2016, #2115, #2116, #2117)
  * Support authenticated SMTP (PR #2102) Thanks @DanielDent!
  * Add a counter metric for successfully-sent transactions (PR #2121)
  * Propagate errors sensibly from proxied IS requests (PR #2147)
  * Add more granular event send metrics (PR #2178)
  * Use JSONSchema for validation of filters. Thanks @pik! (PR #1783)
  * Reread log config on SIGHUP (PR #1982)
  * Speed up public room list (PR #1989)
  * Add helpful texts to logger config options (PR #1990)
  * Minor ``/sync`` performance improvements. (PR #2002, #2013, #2022)
  * Add some debug to help diagnose weird federation issue (PR #2035)
  * Correctly limit retries for all federation requests (PR #2050, #2061)
  * Don't lock table when persisting new one time keys (PR #2053)
  * Reduce some CPU work on DB threads (PR #2054)
  * Cache hosts in room (PR #2060)
  * Batch sending of device list pokes (PR #2063)
  * Speed up persist event path in certain edge cases (PR #2070)
  * Reduce database table sizes (PR #1873, #1916, #1923, #1963)
  * Update contrib/ to not use syutil. Thanks to andrewshadura! (PR #1907)
  * Don't fetch current state when sending an event in common case (PR #1955)

- Update to version v0.24.1+4.632baf79:
  * Disallow capital letters in userids
  * Allow = in mxids and groupids
  * Validate group ids when parsing
  * Fix a logcontext leak in the media repo
  * Correctly wire in update group profile over federation
  * replace 'except:' with 'except Exception:'
  * fix vars named `l`
  * Bump version and changelog
  * Add jitter to validity period of attestations
  * Revert "Add jitter to validity period of attestations"

- Do not suppress errors from useradd procedure.
- Trim description to the essence of the package. It is not
  supposed to be a manual or architectural document.
- Remove redundant %clean section. Replace %__-type macro
  indirections.

- Prevent conflicts between python2/3 version of packages

- Initial version of matrix-synapse version 0.19.2